CVE-2010-4879

PHP <0.6.0 beta1 - RCE

Title source: llm

Description

PHP remote file inclusion vulnerability in dompdf.php in dompdf 0.6.0 beta1 allows remote attackers to execute arbitrary PHP code via a URL in the input_file parameter.

Exploits (1)

exploitdb WRITEUP

by Andre_Corleone · textwebappsphp

https://www.exploit-db.com/exploits/14851

View Code ZIP pw:eip

References (1)

[Exploit] http://www.exploit-db.com/exploits/14851

Scores

EPSS 0.0055

EPSS Percentile 68.2%

Details

CWE

CWE-94

Status published

Products (2)

digitaljunkies/dompdf 0.6.0 beta1

dompdf/dompdf 0.6 - 0.6.1Packagist

Published Oct 07, 2011

Tracked Since Feb 18, 2026